HP SWFScan is a free Windows-based security tool to help developersfind and fix security vulnerabilities in applications developed with the AdobeFlash Platform. The tool is the first of its kind to decompile applicationsdeveloped with the Flash platform and perform static analysis to understandtheir behaviors. This helps developers without security backgrounds identifyvulnerabilities hidden within the application which cannot be detected withdynamic analysis methods.

(I've tested this app, and it's really good.. it gets all your code and checks if there are errors, or possible vulnerabilities )

Most of the time it gets you trace statements you left in your code.. here's a sample code from my preloader code...

SummaryAn indication that the trace() function is being utilized was detected due to the presence of debug messaging.This can represent a serious security concern as path names and other information can be revealed. Recommendations include removing all debugging messaging from the application code before it is placed on production servers.

Fix

Set 'Omit Trace Actions' to 'true'. The Omit Trace Actions flag in Flash development environments tells the compiler to remove any trace commands when creating the compiled SWF file. This will make the published SWF smaller and it will remove any excess information or actions from the SWF. References